Security Compliance Manager

Company Description

Founded in 2002, Jeena Sikho Lifecare Limited is committed to promoting a healthy and prosperous India through innovation and efficiency. The company is renowned for its trusted brands, including Shuddhi Ayurveda, Shuddhi Clinics, Origine, and HIIMS Hospital . With a focus on delivering quality healthcare and wellness services, Jeena Sikho strives to build a better world and enhance the future of India. The organization is driven by a mission to transform lives through an integrated and holistic approach to well-being.

Job Overview

We are seeking an experienced and detail-oriented Security Compliance Manager to lead and manage the organizations security compliance and risk management initiatives. The role focuses on ensuring adherence to regulatory, legal, and industry security standards while working closely with IT, security, and business teams. The ideal candidate will have strong expertise in governance, risk, and compliance (GRC) and experience managing audits and regulatory requirements.

Key Responsibilities

• Develop, implement, and maintain security compliance programs, policies, and procedures.
• Monitor and ensure compliance with regulations and standards such as HIPAA, PCI DSS, GDPR, PII, SOX, and ISO 27001.
• Conduct regular risk assessments, internal audits, and compliance reviews.
• Collaborate with IT, security, and business teams to identify and remediate compliance gaps.
• Manage relationships with external auditors, regulators, and certification bodies.
• Prepare compliance reports and present findings, risks, and recommendations to senior leadership.
• Design and deliver compliance awareness and training programs for employees.
• Track regulatory changes and update compliance programs to meet evolving requirements.

Key Requirements

Experience:

• 57 years of experience in security compliance, governance, risk management, or IT audit roles.
• Proven experience managing regulatory audits and security certifications.
• Hands-on experience with data privacy and security compliance programs (GDPR, HIPAA, PII, CCPA).

Educational Qualification:

• Bachelors degree in Cybersecurity, Information Systems, or Business (required).
• Masters degree in Information Security, Risk Management, or a related field (preferred).

Skills:

Hard Skills:

• Strong knowledge of security frameworks such as NIST, ISO 27001, and CIS.
• Proficiency with GRC tools and compliance management platforms.
• Experience conducting risk assessments and developing remediation plans.
• Familiarity with cloud security, SaaS environments, and data privacy regulations.

Soft Skills:

• Strong communication, documentation, and presentation skills.
• High attention to detail with the ability to interpret complex regulations.
• Problem-solving and critical thinking abilities.
• Leadership and cross-functional collaboration skills.
• Ability to influence stakeholders across technical and business teams.

Certifications

• CISSP, CISM, or CISA (required).
• CRISC or ISO 27001 Lead Implementer / Lead Auditor (preferred).

Preferred Qualifications

• Experience leading cross-functional compliance initiatives.
• Knowledge of emerging security and compliance requirements in cloud and SaaS environments.
• Strong background in audit management and regulatory reporting.